| Release | Version |
|---|---|
| wheezy (security) | 1.3.1-4+deb7u1 |
| jessie | 1.3.3-1 |
| stretch | 1.3.3-4 |
| buster | 1.3.3-4 |
| sid | 1.3.3-4 |
| Bug | wheezy | jessie | stretch | buster | sid | Description |
|---|---|---|---|---|---|---|
| CVE-2017-1000071 | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | vulnerable | Jasig phpCAS version 1.3.4 is vulnerable to an authentication bypass ... |
| Bug | Description |
|---|---|
| CVE-2014-4172 | php-cas unencoded tickets |
| CVE-2012-5583 | phpCAS before 1.3.2 does not verify that the server hostname matches a ... |
| DSA / DLA | Description |
|---|---|
| DSA-3017-1 | php-cas - security update |